firefrost-gaming/antigravity-skills-reference
3
0
Fork 0
Code Issues Pull Requests Actions 4 Packages Projects Releases Wiki Activity

docs: expand security posture references for contributor and maintainer workflows

Browse Source
This commit is contained in:
sck_0
2026-03-15 10:02:22 +01:00
parent ee53e7d8e7
commit 74e4cccd70
8 changed files with 76 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
docs/contributors/skill-template.md
View File

@@ -54,6 +54,17 @@ More instructions...
- ❌ Don't do this
- ❌ Avoid this
## Security & Safety Notes
- If this skill includes shell commands, command-like examples, network fetches, token/capability strings, or direct mutation guidance, add explicit preconditions and caveats.
- For deliberate risky examples (for example `curl ... | bash`, `wget ... | sh`, credential examples), include a reviewer-visible reason and add an allowlist comment:
```markdown
<!-- security-allowlist: approved for documented workflow X -->
```
- If the skill can alter files/systems or run dangerous actions, document confirmation gates and environment expectations (`local-only`, `authorized test environment`, etc.).
## Common Pitfalls
- **Problem:** Description